UltimumAI

Privacy Policy

Last updated: February 24, 2025

1. Introduction

This Privacy Policy explains how we collect, use, and protect your information when you use UltimumAI. We are committed to ensuring the privacy and security of your personal information while providing you with a high-quality service.

2. Information We Collect

We collect and store the following information:

  • Account Information: Email address, name, and profile picture (if provided through Google Sign-in)
  • Payment Information: Balance changes and transaction records related to your account
  • Authentication Data: Information related to email OTP verification or Google Sign-in
  • Session Information: Temporary IP address storage for rate limiting purposes only

3. Local Storage

The following data is stored locally in your browser's IndexedDB and is not accessible to us:

  • Chat histories and conversations
  • Your API keys (when you choose to use your own)
  • User preferences and settings

4. How We Use Your Information

We use your information for the following purposes:

  • Account Management: To create and maintain your account
  • Payment Processing: To manage your balance and process payments through Stripe
  • Service Delivery: To provide you with access to AI chat services
  • Security: To prevent fraud and abuse through rate limiting

5. Analytics

We use self-hosted Matomo analytics to collect anonymized usage data. This helps us understand how our service is used while respecting your privacy. No personally identifiable information is collected through our analytics system.

6. Payment Processing

We use Stripe for payment processing. When you add money to your balance:

  • Payment information is handled directly by Stripe
  • We store only the necessary transaction records and balance information
  • Please refer to Stripe's Privacy Policy for information about how they handle your payment data

7. Third-Party Services

When you use your own API keys:

  • Your API keys are stored locally in your browser only
  • Communications with third-party AI services are made directly through your API keys
  • These interactions are subject to the respective privacy policies of the API providers

8. Data Retention

We retain your account information and transaction history for as long as you maintain an account with us. When you delete your account:

  • All server-side data associated with your account is permanently deleted
  • Locally stored data in your browser remains until you clear it
  • Historical balance changes may be retained for a limited period for accounting purposes

9. Security

We implement appropriate security measures to protect your information:

  • Secure authentication through email OTP or Google Sign-in
  • Encryption of sensitive data in transit and at rest
  • Regular security audits and updates

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this policy.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us at [email protected].

Terms of Use

Last Updated: [Date]

1. Acceptance of Terms

By accessing or using UltimumAI ("Service"), you agree to be bound by these Terms of Use ("Terms"). If you disagree with any part of these terms, you may not access or use the Service.

2. Description of Service

UltimumAI is an AI chatbot service that allows users to interact with AI models through two methods:

2.1. Direct API Integration: Users can provide their own API keys to interact with AI services directly through our platform.

2.2. Prepaid Balance: Users can deposit funds into their account balance through Stripe and use the Service with our integrated AI providers.

3. User Accounts

3.1. Account Creation: You can create an account using email verification (OTP) or Google sign-in.

3.2. Account Security: You are responsible for maintaining the confidentiality of your account credentials and for all activities that occur under your account.

3.3. Account Termination: You may delete your account at any time, provided your balance is not negative. Upon account deletion, all your data stored on our servers will be permanently deleted.

4. Data Storage and Privacy

4.1. Local Storage: Chat histories and related data are stored locally in your browser's IndexedDB.

4.2. Server Storage: We store only essential account information, including user details, balance information, and transaction records as outlined in our database schema.

4.3. Analytics: We use self-hosted Matomo analytics which collects anonymized usage data.

4.4. API Keys: If you choose to use your own API keys, you are responsible for their security and proper usage.

5. Payments and Balance

5.1. Payment Processing: All payments are processed through Stripe. By using our Service, you agree to comply with Stripe's Terms of Service.

5.2. Balance Management:
- Funds can be added to your account balance through Stripe
- Message costs are deducted from your balance as you use the Service
- No refunds are provided for deposited funds
- You cannot delete your account if you have a negative balance

5.3. Pricing: Message pricing is variable and will be displayed within the Service. We reserve the right to modify pricing at any time without prior notice.

6. Service Usage

6.1. API Usage: When using your own API keys, you are responsible for:
- Compliance with the API provider's terms of service
- Any costs incurred through the API provider
- Maintaining valid and active API keys

6.2. Fair Usage: We reserve the right to implement rate limiting or other usage restrictions to ensure service stability.

7. Limitation of Liability

7.1. Service Availability: The Service is provided "as is" without any guarantees of uptime or availability.

7.2. API Integration: We are not responsible for:
- Third-party API service disruptions or failures
- Costs incurred through third-party APIs
- Data loss or security breaches at the API provider level

7.3. Local Data: We are not responsible for any loss of locally stored data in your browser's IndexedDB.

8. Account Security

8.1. Unauthorized Access: If you suspect unauthorized access to your account, contact us immediately.

8.2. Security Measures: We implement reasonable security measures but cannot guarantee absolute security of your account or data.

9. Modifications to Service

9.1. We reserve the right to modify or discontinue the Service at any time without notice.

9.2. We may update these Terms at any time. Continued use of the Service after any changes constitutes acceptance of the new Terms.

10. Governing Law

These Terms shall be governed by and construed in accordance with the laws of Croatia, without regard to its conflict of law provisions.

11. Contact Information

For any questions about these Terms or the Service, please contact us at [email protected].